Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-08-2017
Exécuté par Ludivine (29-08-2017 20:01:32)
Exécuté depuis C:\Users\Ludivine\Downloads
Windows 10 Home Version 1607 (X64) (2016-08-24 16:47:47)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3480393813-2550657833-2433039734-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3480393813-2550657833-2433039734-503 - Limited - Disabled)
Invité (S-1-5-21-3480393813-2550657833-2433039734-501 - Limited - Disabled)
Ludivine (S-1-5-21-3480393813-2550657833-2433039734-1001 - Administrator - Enabled) => C:\Users\Ludivine

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20095 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Age of Empires III - The Asian Dynasties (HKLM-x32\...\{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The WarChiefs (HKLM-x32\...\{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (HKLM-x32\...\{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Alice Madness Returns - The Complete Collection (HKLM-x32\...\Alice Madness Returns - The Complete Collection_is1) (Version:  - )
Amnesia: A Machine for Pigs (HKLM\...\Steam App 239200) (Version:  - The Chinese Room)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.54 - NVIDIA Corporation) Hidden
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation)
Assassins Creed Unity Update v1.5 (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - )
Assassin's Creed Unity version 1.4.0 (HKLM-x32\...\{5CF3C6FD-33E1-46B6-870F-89478DEFF185}_is1) (Version: 1.4.0 - UBISoft)
ASUS USB-N10 Wireless LAN Driver (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.0.0.9 - ASUS)
Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BioShock Infinite (HKLM\...\Steam App 8870) (Version:  - Irrational Games)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform)
CloudExtender (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\CloudExtender) (Version:  - AltoCloud) <==== ATTENTION
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0154 - Disc Soft Ltd)
DCS World (HKLM\...\DCS World_is1) (Version: 1.5 - Eagle Dynamics)
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
Discord (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden
DragonBoost (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\119) (Version:  - ) <==== ATTENTION
DriversCloud.com (64 bits) (HKLM\...\{77EEC345-B758-45DF-94C2-25D91D520650}) (Version: 8.0.4.0 - Cybelsoft)
GameRanger (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\GameRanger) (Version:  - GameRanger Technologies)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.19.108.1 - Intel Security)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.2.1183 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{CCBE9F01-C2C3-469C-A508-2E23A7495E91}) (Version: 1.0.0.609 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Kit de développement logiciel (SDK) Microsoft .NET Framework 4.6.1 (Français) (HKLM-x32\...\{9369E1F2-44C9-4864-843E-159725E660CB}) (Version: 4.6.01055 - Microsoft Corporation)
Le Seigneur des Anneaux Online v1301.0055.0535.4025 (HKLM-x32\...\12bbe590-c890-11d9-9669-0800200c9a66_is1) (Version: 1301.0055.0535.4025 - Turbine, Inc.)
Les Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Les Sims™ 3 70's, 80's, 90's Kit (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
Les Sims™ 3 Accès VIP (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Les Sims™ 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Les Sims™ 3 Cinéma Kit d'objets (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts)
Les Sims™ 3 Diesel Kit (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Les Sims™ 3 Inspiration Loft Kit (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Les Sims™ 3 Saisons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Les Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Les Sims™ 3 Vitesse ultime ! Kit (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Les Sims™ 3 Générations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Les Sims™ 3 Destination Aventure (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Les Sims™ 3 Animaux & Cie (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Les Sims™ 3 En route vers le Futur (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts)
Les Sims™ 3 Île de Rêve (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
Les Sims™ 3 Jardin de Style Kit (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Les Sims™ 3 Super-pouvoirs (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Les Sims™ 3 University (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
Les Sims™ 3 Vie Citadine Kit (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.82 - Logitech)
LogMeIn Hamachi (HKLM-x32\...\{E59194A0-A215-4C44-8B92-40780387EBE0}) (Version: 2.2.0.578 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mass Effect™ (HKLM-x32\...\{44A570EE-FD93-4086-8997-2C38DFDE0019}) (Version: 1.2.20608.0 - Electronic Arts)
Micro Foundation 7 version 7.0 (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\{008BF021-56E9-459F-904B-E34FF303C122}}_is1) (Version: 7.0 - Micro Foundation 7, Inc.)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (Français) (HKLM-x32\...\{AD054CB0-F527-48AD-832B-E65D46237C88}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service  (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{5359C5C6-F83D-4E74-9170-F9A68BE1C57F}) (Version: 2.3.0.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mises à jour NVIDIA 2.13.0.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.13.0.21 - NVIDIA Corporation) Hidden
Mozilla Firefox 54.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 54.0.1 (x86 fr)) (Version: 54.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.1.6388 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden
Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig)
MuseScore 2 (HKLM-x32\...\{4F0E15EA-F64C-11E5-9992-E717EA7DB0C8}) (Version: 2.0.3 - Werner Schweer and Others)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.12.0.34172 - Electronic Arts, Inc.)
Outlast (HKLM-x32\...\Outlast_is1) (Version:  - )
Outlast 2 (HKLM-x32\...\Outlast 2_is1) (Version:  - )
Panneau de configuration NVIDIA 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.53 - NVIDIA Corporation) Hidden
PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Python Launcher (HKLM-x32\...\{0276F61C-30FC-46D4-BEFE-0EA959C4D691}) (Version: 3.5.2121.0 - Python Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.8.311.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8228 - Realtek Semiconductor Corp.)
Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (HKLM-x32\...\{79B9BF33-93CC-37A3-9377-AEB7BEFA2C08}) (Version: 14.0.25424 - Microsoft Corporation) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version:  - Bioware/EA)
STAR WARS™ Battlefront™ (HKLM-x32\...\{E402D891-4E45-4ce9-B41F-DD35864EF170}) (Version: 1.0.7.64833 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Explorer for Microsoft Visual Studio 2015 Update 3 CTP1 (HKLM-x32\...\{C0402801-37B7-30B1-A678-AE3E73E4C4F6}) (Version: 14.98.25331 - Microsoft) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78716 - TeamViewer)
Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden
The Forest (HKLM\...\Steam App 242760) (Version:  - Endnight Games Ltd)
The Sims 4 (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{00B079B8-3A55-4804-9D9F-3D47644827CB}) (Version: 1.8.35.0 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation)
VS Update core components (HKLM-x32\...\{C81D9D25-445F-3C3F-B073-A2EDD71B7037}) (Version: 14.0.25424 - Microsoft Corporation) Hidden
vs_update3notification (HKLM-x32\...\{456AD42E-76D4-3E47-88FC-CB4C1ECA0400}) (Version: 14.0.25424 - Microsoft Corporation) Hidden
Wakfu (HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version:  - Ankama)
WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  -> Pas de fichier
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} =>  -> Pas de fichier
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-02] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} =>  -> Pas de fichier
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {218870B3-0FFC-4100-8C5E-7BBF72611F38} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {242AFED2-0029-4174-998C-325CF99B4204} - System32\Tasks\uuxHwpnMkRCRpJh2 => rundll32 "C:\Program Files (x86)\thzXuJvjU\ZzB5QsG.dll",#1
Task: {24678108-5AE6-4695-BF1C-8B781DE9505F} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {25AEE13A-9ACD-47E7-8A7A-9046495B8479} - System32\Tasks\7cb75b86dde9568b663d4d3202f2d057 => sc start 7cb75b86dde9568b663d4d3202f2d057 <==== ATTENTION
Task: {287E9E8A-3C2B-4782-B07E-A8410BC69818} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {2E33C34D-D093-4C50-8EC3-5DC787101538} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.)
Task: {3558AD01-2967-4FE9-8534-7A76364079FC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {57CF77A9-E3EC-403A-AF7B-BECBF3D481C9} - System32\Tasks\System\SystemCheck => C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Helper.exe [2017-06-28] ()
Task: {84955A03-F718-40AB-9D58-913BEBF8DD5A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd)
Task: {874B0D6D-86C5-44E9-B374-ACF6CD8C7ACF} - System32\Tasks\TnqpiRJoXWMCwN => rundll32 "C:\Program Files (x86)\GXZiGyYLSHyU2\j23eY1B.dll",#1
Task: {9882C647-3DA0-4633-AD21-D738104A22FF} - System32\Tasks\PDF Creator => C:\WINDOWS\system32\rundll32.exe "C:\Program Files\PDF Creator\PDF Creator.dll",OabwMc <==== ATTENTION
Task: {9AE8BC67-288F-42F9-9A4A-E9C201953E86} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-27] (Adobe Systems Incorporated)
Task: {AF997287-0B34-466A-90F6-CBECBC5345A0} - System32\Tasks\uuxHwpnMkRCRpJh => rundll32 "C:\Program Files (x86)\thzXuJvjU\ZzB5QsG.dll",#1
Task: {C1E902A6-EB6B-4643-8D4E-D2828583BA3E} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-01-14] (Intel(R) Corporation)
Task: {C3D76B07-44F4-4151-ADE8-BECDC033AC90} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {D342A442-9DAE-4486-AC69-75661B6AA540} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {D426B11D-33EF-494E-887D-E4ADC717B02B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.)
Task: {E0EBBA55-C71F-46C4-8DED-0F8BEEA02409} - System32\Tasks\{5003D71E-15CF-4617-95CC-2B562FDBB1C6} => rundll32.exe "C:\Users\Ludivine\AppData\Local\Microsoft\TaskPlay\caches.dat",StaticCache
Task: {E807C6CF-72AE-4049-8038-43ADBE8C073B} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation)
Task: {EB959218-2699-4FF3-AA57-BA84C6D3E49F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation)
Task: {EC875CDF-631B-4338-B1B4-23AE8B00DB19} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation)
Task: {F4B9FAF7-AF50-423C-A495-E654A8DE7311} - System32\Tasks\f458a767247fdcd4a5d0d80cc8212aa2 => powershell.exe -NoProfile -NoLogo -NonInteractive -ExecutionPolicy Bypass -File "C:\WINDOWS\f458a767247fdcd4a5d0d80cc8212aa2.ps1" <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\uuxHwpnMkRCRpJh.job => C:\Program Files (x86)\thzXuJvjU\ZzB5QsG.dll

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


Shortcut: C:\Users\Ludivine\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
Shortcut: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Intеrnеt Ехрlоrеr.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) <==== Cyrillic
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic
Shortcut: C:\Users\Public\Desktop\Моzillа Firеfох.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) <==== Cyrillic

ShortcutWithArgument: C:\Users\Ludivine\Desktop\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic <==== Cyrillic
ShortcutWithArgument: C:\Users\Ludivine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic <==== Cyrillic
ShortcutWithArgument: C:\Users\Public\Desktop\Gооglе Сhrоmе.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic <==== Cyrillic

==================== Modules chargés (Avec liste blanche) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-06-14 22:54 - 2017-06-03 12:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-24 18:23 - 2016-12-29 14:44 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-08-29 15:21 - 2015-06-01 21:38 - 002293760 _____ () C:\Program Files\PDF Creator\PDF Creator.dll
2016-10-01 14:33 - 2016-11-17 15:45 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-01 14:33 - 2016-11-17 15:45 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-01 14:34 - 2016-11-17 15:45 - 000418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2017-08-29 16:01 - 2017-08-29 19:34 - 000568832 _____ () C:\WINDOWS\TEMP\gF067.tmp.exe
2016-08-24 18:53 - 2016-08-24 18:53 - 000959168 _____ () C:\Users\Ludivine\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-09-15 23:52 - 2016-09-07 06:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 10:53 - 2017-03-04 08:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 10:53 - 2017-03-04 08:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 10:53 - 2017-03-04 08:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 10:53 - 2017-03-04 08:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-06-14 22:54 - 2017-06-03 10:47 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-06-14 22:54 - 2017-06-03 10:47 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-06-14 22:54 - 2017-06-03 10:51 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-08-29 15:14 - 2017-06-28 12:24 - 003184128 _____ () C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\Helper.exe
2017-08-29 15:10 - 2017-08-29 15:10 - 000008192 _____ () C:\Users\Ludivine\AppData\Roaming\xseb5pjit1a\z3t0ojwnrqh.exe
2017-08-29 15:10 - 2017-08-29 15:10 - 000008192 _____ () C:\Users\Ludivine\AppData\Roaming\tk3e5pwx1iy\ivl33uyo2eh.exe
2017-08-29 15:10 - 2017-08-29 15:10 - 000008192 _____ () C:\Users\Ludivine\AppData\Roaming\jy03hplijpq\juiw5foyuix.exe
2017-08-29 15:10 - 2017-08-29 15:10 - 000008192 _____ () C:\Users\Ludivine\AppData\Roaming\sfvrmowtj1c\hqjockott2z.exe
2017-08-29 15:10 - 2017-08-29 15:10 - 001963572 _____ () C:\Users\Ludivine\AppData\Roaming\Dragon_Naturallyspeaking_12_Activation_Crack store files\Dragon_Naturallyspeaking_12_Activation_Crack.exe
2017-08-29 19:37 - 2016-09-03 17:03 - 008248832 _____ () C:\ProgramData\VMProtect\marlin.exe
2017-08-27 10:04 - 2017-08-27 10:04 - 001582080 _____ () C:\Program Files\7cb75b86dde9568b663d4d3202f2d057\7277ec2cfeb1b8778253f00da7a19f18.exe
2017-08-29 19:37 - 2017-08-29 11:26 - 000014848 _____ () C:\ProgramData\VMProtect\VMProtectks.exe
2017-08-29 10:49 - 2017-08-23 10:48 - 003824472 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libglesv2.dll
2017-08-29 10:49 - 2017-08-23 10:48 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\60.0.3112.113\libegl.dll
2017-04-12 12:12 - 2017-03-28 08:26 - 003388256 _____ () C:\Windows\SystemApps\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\ContentDeliveryManager.Background.dll
2016-02-11 17:47 - 2016-02-11 17:47 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-10-01 14:34 - 2016-11-17 15:45 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-01 14:33 - 2016-11-17 15:45 - 003774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-10-01 14:33 - 2016-11-17 15:45 - 000900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-07-24 15:57 - 2017-07-24 15:57 - 001991640 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2017-08-29 15:10 - 2017-08-29 15:10 - 000020992 _____ () C:\Users\Ludivine\AppData\Local\kdsoop.dll
2016-10-01 14:34 - 2016-11-17 12:20 - 000506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-10-01 14:34 - 2016-11-17 12:20 - 000252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-10-01 14:34 - 2016-11-17 12:20 - 002809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-10-01 14:34 - 2016-11-17 12:20 - 000245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-10-01 14:34 - 2016-11-17 12:20 - 000436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-10-01 14:34 - 2016-11-17 12:20 - 000338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-10-01 14:34 - 2016-11-17 12:20 - 000968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:957E9765 [120]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-07-31 00:42 - 2017-08-29 16:02 - 000013924 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 distribution.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 plugpackdownload.net
127.0.0.1 texttotalk.org
127.0.0.1 gambling577.xyz
127.0.0.1 htagdownload.space
127.0.0.1 mybcnmonetize.com
127.0.0.1 dscdn.pw
127.0.0.1 beautifllink.xyz
127.0.0.1	gf.tools.avast.com
127.0.0.1	pair.ff.avast.com
127.0.0.1	ipm-provider.ff.avast.com
127.0.0.1	ipm-provider.ff.avast.com
127.0.0.1	ipm-provider.ff.avast.com
127.0.0.1	id.avast.com
127.0.0.1	v4618535.iavs9x.u.avast.com
127.0.0.1	v4618535.ivps9x.u.avast.com
127.0.0.1	v4618535.ivps9tiny.u.avast.com
127.0.0.1	v4618535.vpsnitro.u.avast.com
127.0.0.1	v4618535.vpsnitrotiny.u.avast.com
127.0.0.1	v4618535.iavs5x.u.avast.com
127.0.0.1	v7.stats.avast.com
127.0.0.1	v7.stats.avast.com
127.0.0.1	v7event.stats.avast.com

Il y a 347 plus de lignes.


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ludivine\Desktop\thumb-1920-299926.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "MRT"
HKLM\...\StartupApproved\Run32: => "IMSS"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "prsetup.exe"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "Akamai NetSession Interface"
HKU\S-1-5-21-3480393813-2550657833-2433039734-1001\...\StartupApproved\Run: => "Speech Recognition"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{F927E9E6-09C4-4872-9E77-3AE4E4125C3D}] => (Allow) C:\Windows\AutoKMS\AutoKMS.exe
FirewallRules: [{7671F503-73B1-4BA9-91A3-D2E89AD70669}] => (Allow) C:\Windows\AutoKMS\AutoKMS.exe
FirewallRules: [{C21CAF4B-BE8E-4438-ADC1-BE6C70947D06}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{9D2A7F18-E013-4D16-AFAB-3E79D9C9A8BC}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio Tools for Unity\2015\UnityVS.OpenFile.exe
FirewallRules: [{814B499E-C806-43B2-A21B-71D905F60147}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{AB66E7E8-7360-46B8-A189-764B2CC6C5BB}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{5FB97549-64D9-46CA-AAA0-7D78A1B9D67B}] => (Allow) C:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{E567B895-8550-40A7-8B42-F450C6F88720}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [{F3BEEA0D-0829-49CD-9D81-CD5C967227AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\BioShock Infinite\Binaries\Win32\BioShockInfinite.exe
FirewallRules: [UDP Query User{D181A096-0315-4F84-B702-462339B2D53A}C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe] => (Allow) C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe
FirewallRules: [TCP Query User{58274143-A051-4295-8EA2-D37317F81FAB}C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe] => (Allow) C:\program files (x86)\origin games\star wars battlefront\starwarsbattlefront.exe
FirewallRules: [{7D1D53A0-BEA7-4A77-B133-F27873073CDB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{268D891C-DE02-447E-9355-D1FD5BD78352}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{BB77CB63-2ADB-4372-B27A-C8DEFA1FC77D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CBF49B80-68B6-4B45-8C68-3A2E11D4B122}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{BC843702-9460-42C1-98A0-821711085700}C:\program files (x86)\electronic arts\alice madness returns - the complete collection\game\alice2\binaries\win32\alicemadnessreturns.exe] => (Allow) C:\program files (x86)\electronic arts\alice madness returns - the complete collection\game\alice2\binaries\win32\alicemadnessreturns.exe
FirewallRules: [TCP Query User{A6134FDE-7007-4DBA-89F4-CBA218041E8A}C:\program files (x86)\electronic arts\alice madness returns - the complete collection\game\alice2\binaries\win32\alicemadnessreturns.exe] => (Allow) C:\program files (x86)\electronic arts\alice madness returns - the complete collection\game\alice2\binaries\win32\alicemadnessreturns.exe
FirewallRules: [{DA120190-5035-48F2-BBDB-B73F700D97BE}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{0A9626AD-F381-4314-BE21-C5AAED7B4E92}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{DE5A2F76-D4ED-4662-9899-9AFBFB64D9A4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{939D5FF5-C526-4C97-BF7A-41E23619259D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AE364A61-F68D-446C-B75A-DADAAB864CB7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{74C4A12A-D4B1-43E0-8B9B-3C4D00D6B8A7}C:\program files (x86)\red barrels\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\red barrels\outlast\binaries\win64\olgame.exe
FirewallRules: [UDP Query User{C9480562-8956-406C-A8FC-A4266608220A}C:\program files (x86)\red barrels\outlast\binaries\win64\olgame.exe] => (Allow) C:\program files (x86)\red barrels\outlast\binaries\win64\olgame.exe
FirewallRules: [TCP Query User{9811CBD2-875D-4DED-A4C1-588FA8E1D342}C:\users\ludivine\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\ludivine\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{5E1EBB04-B59D-4AEF-94C0-B9C3DE264403}C:\users\ludivine\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\ludivine\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{DFBCC17E-ED2B-4A47-9C37-D35E008BEC6F}C:\program files (x86)\turbine\le seigneur des anneaux online\lotroclient.exe] => (Allow) C:\program files (x86)\turbine\le seigneur des anneaux online\lotroclient.exe
FirewallRules: [UDP Query User{FDF8AF93-9F34-4BBF-A0F3-4D3CFB649842}C:\program files (x86)\turbine\le seigneur des anneaux online\lotroclient.exe] => (Allow) C:\program files (x86)\turbine\le seigneur des anneaux online\lotroclient.exe
FirewallRules: [TCP Query User{B69F0F43-BE86-4EFB-BEC8-65227936E7AD}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{934AE378-9262-4A68-93B8-E8B8A56FE696}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{CF54D438-BBE1-4B6C-BA2D-86D08F032795}C:\users\ludivine\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\ludivine\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{649547F8-6523-47E3-B8C4-5682869F3D00}C:\users\ludivine\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\ludivine\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{593A3F57-92AB-4516-B423-26178E88403D}] => (Allow) C:\Users\Ludivine\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0DE35989-4D85-4165-96BE-C38A6F631686}] => (Allow) C:\Users\Ludivine\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{529C4B00-480B-4C01-8B67-D7CFE9D7FFA7}] => (Allow) C:\Users\Ludivine\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7A0ED115-A5D1-48A4-B1D0-205823F36885}] => (Allow) C:\Users\Ludivine\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{82307403-796B-406D-9663-32D5928FA390}] => (Allow) C:\Users\Ludivine\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{190A8737-C2A5-4492-BCC6-D39F07D5171C}] => (Allow) C:\Users\Ludivine\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{EE50F045-6D16-409D-8765-5449CDD6BBF9}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{6FE8375B-62BA-46EC-A3A7-94B4974FE002}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{6A5CB51A-9328-4AE1-82EE-71B6D312FEC3}C:\program files\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) C:\program files\eagle dynamics\dcs world\bin\dcs_updater.exe
FirewallRules: [UDP Query User{D0F482E5-8672-40DE-A476-4DD7A2DF41A9}C:\program files\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) C:\program files\eagle dynamics\dcs world\bin\dcs_updater.exe
FirewallRules: [{515833DB-B9DD-46E0-A9DD-45E778282CA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{699BA5CF-F737-4FD6-82E8-F0D84BBCF511}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{25C8BED0-AC70-4489-B331-E6A2858F1374}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{556F4F4A-CB79-4735-9A8F-FFF978FFC15B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{08751BBF-22AD-474F-8CFC-A653B1D2F66B}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe
FirewallRules: [{988D82EA-9461-429F-8A9B-0D09B3DE4794}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe
FirewallRules: [{B0E40D5B-079D-4921-8038-E391565BB3A2}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{15E4F617-CADE-4974-A8AE-CF00D93D9F07}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{339B39AA-1970-4A10-A946-666502CA29EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [TCP Query User{E2CBB1ED-EE29-46A2-92A9-4E19EDB14946}C:\users\ludivine\appdata\local\programs\lnv\stremio\stremio.exe] => (Allow) C:\users\ludivine\appdata\local\programs\lnv\stremio\stremio.exe
FirewallRules: [UDP Query User{BA3541D0-A8E9-4FDA-900B-426032F02D67}C:\users\ludivine\appdata\local\programs\lnv\stremio\stremio.exe] => (Allow) C:\users\ludivine\appdata\local\programs\lnv\stremio\stremio.exe
FirewallRules: [{B3208E15-F9B4-45F1-B682-500500A72DF9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B24217E4-96E6-4481-9420-8D28BB70A890}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C6921DB9-5C3D-4021-B52A-3DE199213C30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{F307387E-5CDB-44AD-9458-5FBE89CBAC4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [TCP Query User{5BE5B853-2AC6-4BF9-BCDD-DE708154A598}C:\users\ludivine\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\ludivine\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{80A0396B-DEF8-4938-A101-DE11AB36AE1C}C:\users\ludivine\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\ludivine\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{89110704-D3C5-4D6C-8CC1-AE4A73BDAE18}C:\program files\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) C:\program files\dcs-simpleradio-standalone\sr-clientradio.exe
FirewallRules: [UDP Query User{B8E8D0C2-6172-4D4A-84B4-74EA10A4FD93}C:\program files\dcs-simpleradio-standalone\sr-clientradio.exe] => (Allow) C:\program files\dcs-simpleradio-standalone\sr-clientradio.exe
FirewallRules: [TCP Query User{E06F5C4A-DFBB-48EB-B52C-909456C0AD59}C:\program files\eagle dynamics\dcs world\bin\dcs.exe] => (Allow) C:\program files\eagle dynamics\dcs world\bin\dcs.exe
FirewallRules: [UDP Query User{7AE627D2-D2C1-4EC7-BA6B-FC165E6FC96C}C:\program files\eagle dynamics\dcs world\bin\dcs.exe] => (Allow) C:\program files\eagle dynamics\dcs world\bin\dcs.exe
FirewallRules: [{BD137110-7960-4B55-9F97-FD4014F9D992}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [{FE17165F-D3D3-4C7F-BE96-887090E7ACA3}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect\Binaries\MassEffect.exe
FirewallRules: [TCP Query User{9FF6CC2E-9ED6-4BE4-8CC4-C99FD403AB80}C:\games\outlast 2\binaries\win64\outlast2.exe] => (Allow) C:\games\outlast 2\binaries\win64\outlast2.exe
FirewallRules: [UDP Query User{D0599E62-6CE2-4B8C-AD2E-4F67319225FA}C:\games\outlast 2\binaries\win64\outlast2.exe] => (Allow) C:\games\outlast 2\binaries\win64\outlast2.exe
FirewallRules: [{F90F7C2D-4BEC-4489-97A2-56F8DFC91EFC}] => (Block) C:\games\outlast 2\binaries\win64\outlast2.exe
FirewallRules: [{D9664D5D-D8D5-4FB9-8929-43E7A8F7A8A4}] => (Block) C:\games\outlast 2\binaries\win64\outlast2.exe
FirewallRules: [{381CD7C1-C454-4481-9E3D-BDE617DD4882}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Machine for Pigs\aamfp.exe
FirewallRules: [{1955349D-4B51-40FC-A956-59A7476EF457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Machine for Pigs\aamfp.exe
FirewallRules: [{6539D1D6-F315-4A22-911F-5CB31848DA5A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Machine for Pigs\Launcher.exe
FirewallRules: [{C724ED19-3424-4C2A-8D1E-A80B72D531EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Machine for Pigs\Launcher.exe
FirewallRules: [{4D364EB0-055D-499A-89E1-4A939FAE35DE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DEEF61F0-AFAA-418F-BF61-8C5581C1FAB8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FF88692F-730D-40F8-B046-785B9B8559AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EA150DA2-4E04-4181-94E4-AECBA9D28ED3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{80116495-98C0-49EA-8DDC-637ED2F9B13E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{E40B3082-AC3D-439A-83BF-867BFEF17012}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [TCP Query User{9A6AB918-089B-45DD-9075-0FAE5590371B}C:\data\jeux\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\data\jeux\outlast 2\binaries\win64\outlast2.exe
FirewallRules: [UDP Query User{811E3EA5-893E-4551-85AA-5AD2471D82AB}C:\data\jeux\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\data\jeux\outlast 2\binaries\win64\outlast2.exe
FirewallRules: [{6BCFE69D-839C-4EAD-847D-FC72E34154EF}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [{BC0C9CF3-71BB-4800-A64F-0E81ABC70D11}] => (Allow) C:\Windows\System32\rundll32.exe
FirewallRules: [TCP Query User{D45A748D-ED21-414B-8F1A-BB445911321B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{8206344C-5CD9-4109-AB40-37A5178F0A96}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

==================== Points de restauration =========================

27-08-2017 19:08:28 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (08/29/2017 08:01:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libgcc_s_seh-1.dll, version : 0.0.0.0, horodatage : 0x022cba38
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x120c
Heure de début de l’application défaillante : 0x01d320ee0a8414f0
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libgcc_s_seh-1.dll
ID de rapport : 5ac5a8b3-ba5a-43ac-a422-64672393ddf1
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libgcc_s_seh-1.dll, version : 0.0.0.0, horodatage : 0x022cba38
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x19ac
Heure de début de l’application défaillante : 0x01d320ee0a8417fc
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libgcc_s_seh-1.dll
ID de rapport : 3f397e33-a5d9-4ef8-9d28-7edc55c272a8
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libjansson-4.dll, version : 0.0.0.0, horodatage : 0x000157d0
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x17dc
Heure de début de l’application défaillante : 0x01d320ee0a8415d1
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libjansson-4.dll
ID de rapport : 35614f5d-46e2-4aa6-bf00-429e6bf01af5
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libjansson-4.dll, version : 0.0.0.0, horodatage : 0x000157d0
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x1944
Heure de début de l’application défaillante : 0x01d320ee0a841541
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libjansson-4.dll
ID de rapport : 34b0f2d7-0357-40ef-8720-4b7bfb30672e
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libjansson-4.dll, version : 0.0.0.0, horodatage : 0x000157d0
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x120c
Heure de début de l’application défaillante : 0x01d320ee0a8414f0
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libjansson-4.dll
ID de rapport : 7468496f-09f8-44c0-9938-9b777f7ee975
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libjansson-4.dll, version : 0.0.0.0, horodatage : 0x000157d0
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x19ac
Heure de début de l’application défaillante : 0x01d320ee0a8417fc
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libjansson-4.dll
ID de rapport : a757977b-c902-4d84-98a1-16647f3e3f8a
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libstdc++-6.dll, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x1944
Heure de début de l’application défaillante : 0x01d320ee0a841541
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libstdc++-6.dll
ID de rapport : 94a5052a-4938-4446-add8-d17e89b18a63
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libstdc++-6.dll, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x17dc
Heure de début de l’application défaillante : 0x01d320ee0a8415d1
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libstdc++-6.dll
ID de rapport : 2714ba04-70da-477b-9697-c20b0b72fd46
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libstdc++-6.dll, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x120c
Heure de début de l’application défaillante : 0x01d320ee0a8414f0
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libstdc++-6.dll
ID de rapport : f23ec701-4b35-4812-a796-8c7241997a38
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (08/29/2017 08:01:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante attrib.exe, version : 10.0.14393.0, horodatage : 0x578999bf
Nom du module défaillant : libstdc++-6.dll, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x19ac
Heure de début de l’application défaillante : 0x01d320ee0a8417fc
Chemin d’accès de l’application défaillante : c:\Windows\System32\attrib.exe
Chemin d’accès du module défaillant: C:\Users\Ludivine\AppData\Roaming\Microsoft\Windows\libstdc++-6.dll
ID de rapport : 72d45c99-6158-40a5-9f81-2350c86cc03e
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (08/29/2017 07:48:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service -- n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/29/2017 07:48:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service --.

Error: (08/29/2017 07:43:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-60N27HN)
Description: Le serveur App ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (08/29/2017 07:43:05 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (08/29/2017 07:43:00 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (08/29/2017 07:42:56 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (08/29/2017 07:42:51 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (08/29/2017 07:40:49 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (08/29/2017 07:40:44 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (08/29/2017 07:40:40 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.


CodeIntegrity:
===================================
  Date: 2017-08-29 17:10:21.674
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-08-29 15:52:57.850
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-08-29 15:52:57.850
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-08-29 15:12:39.209
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-07-01 20:38:45.199
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-30 22:05:30.376
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-25 21:40:12.180
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-19 12:13:47.147
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-06-17 22:16:33.840
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

  Date: 2017-05-30 23:53:18.176
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Pourcentage de mémoire utilisée: 41%
Mémoire physique - RAM - totale: 8047.38 MB
Mémoire physique - RAM - disponible: 4687.89 MB
Mémoire virtuelle totale: 9327.38 MB
Mémoire virtuelle disponible: 4862.33 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:930.96 GB) (Free:540.63 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt ============================